Forum Discussion
- ClaytonAltocumulus
I would love to know if this can be done. We have a requirement that the VPN must be at least two-factor, and the Linux users are having problems with the Web Client while the CLI (f5fpc) works fine. Except can't submit OTP codes.
- TortiAltostratus
Today I tried the linux cli client also, but without successful user authentication. I cant find the variable for the username and the password at the access policy. It seems like they are different than the web portal or they doesn't work. Can anyone help?
- TortiAltostratus
this is fixed -you allways have to use a form-based logon page
- RahulTripathiAltostratus
- TortiAltostratus
A 2-factor-authentication is possible. I configured it with otp and ldap (AD) authentication. But you have to put both together as single password.
i.e. OTP password + ldap password
Thats possible for us, because the otp value is always a 6 digit value.
So you have to split them at VPE, create a Radius and a LDAP authentication and thats it.
But with this solution, you don't have any control about the client, only about the user.